CMP v1 Ongoing Checkups: Best Practices to Maintain High Compliance Scores
This guide outlines the essential steps for conducting periodic website reviews and maintaining a high website scanner score over time. As your website evolves and new services are added, ensuring correct detection and classification is critical from both compliance and marketing perspectives.
To-Do Checklist
- Website scan
- Classification tab review
- Google Consent Mode settings
- Cookie banner and preference center language
- Data Subject Access Request (DSAR) form
Key Areas to Check
1. Website Scan Report
The Scan Report page is your primary starting point. Review your overall rating and recommended actions. Collaborate with your team or Secure Privacy support to improve your score as needed.
Start with these guides:
- [CMP v1] How do I increase my compliance score (overall rating)?
- [CMP v1] How do I block a cookie in my scan report?
Take note of the services listed -
2. Classification Tab
Review the classification tab and identify:
- Incorrect or missing categories ("unclassified") — assign correct categories.
- Services not properly assigned to cookies — map services accurately to cookies.
More details in the guide: [CMP v1] How to classify and edit your cookies and services
If services or cookies are missing, add them via the Custom Cookies tab using this guide: [CMP v1] How do I add a custom service/cookie?
3. Google Consent Mode (GCM) Settings
Many websites use Google Tag Manager or Google Analytics/Ads. Review the Google Consent Mode tab and settings accordingly.
Consult your Marketing and Legal teams before using GCM Advanced mode. Refer to the checklist: Ensuring Compliance with Google's EU User Consent Policy
Also see official GCM documentation:
4. Cookie Banner and Preference Center Language
Ensure the language used in both the cookie banner and privacy preference center matches your Legal team's standards. Adjust translations and text from the UI as needed.
5. Data Subject Access Request (DSAR) Email Notifications
Your Data Protection Officer (DPO) may want to receive email notifications when visitors exercise their data rights. Confirm which email address receives these requests in the DSAR form settings.
6. Privacy and Cookie Policy Updates
Collaborate with your Legal team to keep your privacy and cookie policies current. Update these documents as regulations and business practices evolve.
See Also
- [CMP v1] How do I increase my compliance score (overall rating)?
- [CMP v1] How do I block a cookie in my scan report?
- [CMP v1] How to classify and edit your cookies and services
- [CMP v1] How do I add a custom service/cookie?
Need Help?
If you have questions or need assistance, contact Secure Privacy support at support@secureprivacy.ai.